EUVD-2023-0664

Malicious code in bioql PyPI...

EUVD-2023-0694

Malicious code in bioql PyPI...

EUVD-2023-0801

Malicious code in bioql PyPI...

CVE-2023-22578

Due to improper artibute filtering in the sequalize js library, can a attacker peform SQL injections...

CVE-2023-22579

Due to improper parameter filtering in the sequalize js library, can a attacker peform injection...

CVE-2023-22579

Due to improper parameter filtering in the sequalize js library, can a attacker peform injection...

CVE-2023-22578

Due to improper artibute filtering in the sequalize js library, can a attacker peform SQL injections...

Sql injection

Due to improper artibute filtering in the sequalize js library, can a attacker peform SQL injections...

Input validation

Due to improper input filtering in the sequalize js library, can malicious queries lead to sensitive information disclosure...

CVE-2023-22579

CVE-2023-22579 concerns Sequelize (Node.js ORM). The related docs point to a type-confusion/unsafe fall-through in getWhereConditions that can bypass parameter filtering, enabling an attacker to execute arbitrary code under certain conditions. Affected component: Sequelize runtime; core issue is ...

CVE-2023-22578

CVE-2023-22578 affects the Sequelize JavaScript ORM. The issue is caused by improper attribute filtering, enabling a remote attacker to execute SQL injections via crafted queries that can view, add, modify, or delete data in the back-end database. Documented impacts in the IBM/Red Hat/OSS advisor...

PT-2023-18565 · Sequelize · Sequelize

Name of the Vulnerable Software and Affected Versions: sequelize js library affected versions not specified Description: The issue is related to improper input filtering in the sequelize js library, which can lead to sensitive information disclosure when malicious queries are executed...